Tip

BackTrack is one forward-thinking penetration testing tool

As security professionals, we strive to be proactive, while also having a good "plan B" at the ready. While we must accept that there will inevitably be times when we have to pick up the pieces after an exploit, a solid toolkit called BackTrack

    Requires Free Membership to View

is designed to help ferret out the insecurities before the malicious hackers do.

As a re-entrant to the hacking field, BackTrack 2.0 has been revived with many new tricks. Based on a live Linux distribution requiring no installation, BackTrack performs the role of a digital multifunctional tool that can help pick locks and bug rooms -- so to speak -- while cloaking one's presence. BackTrack 2.0 contains more than 250 modules covering everything from information gathering and network mapping through vulnerability identification, to penetration testing and privilege escalation. BackTrack also has radio network analysis capabilities (for Wi-Fi and Bluetooth), VoIP and telephony analysis tools and even tools for reverse engineering. Backtrack is more than just a collection of automated hacking tools -- it's more like a ninja-on-a-CD, since all the tools are grouped by function and brought together under a single menu.

This is not the first time an all-in-one toolset has been released, but this is certainly one of the most complete offerings, as its integration with Linux-based 802.x Wi-Fi wrappers makes it fairly straightforward to perform wireless sniffing and packet injection. Another feature is BackTrack's integration with the Metasploit framework. Metasploit is designed to automate payloads to provide shell access or privilege escalation, both locally and remotely.

For more information

Read more about incident response policies and procedures.

Learn how to develop an effective incident response team.

While it might seem that BackTrack is meant for bad-attitude black hats, the new version of BackTrack is specifically aligned with the white hat hacker methodologies used by the Information Systems Security Assessment Framework (ISSAF) and the Open Source Security Testing Methodology Manual (OSSTMM). These organizations publish tomes used by many in the industry to provide enterprise-level formal security assessment and testing methodologies.

In the wrong hands, BackTrack can be a scary tool on your network, as it can be run from a CD, hard drive or even a USB thumb drive, and soon it will be available as a VMware virtual image as well. Fortunately, most tools are only as harmful as the people using them.

About the author:
Scott Sidel is an ISSO with Lockheed Martin.

For more information


 

This was first published in April 2007

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.